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1 Demons seeking daemons-a practical approach to hardening your openSSH 

configuration 
Phil Moses 

March 2006 Linux Journal, volume 2006 issue 143 
Publisher: Specialized Systems Consultants, Inc. 

Full text available: jj] htmlf 18.57 KB) Additional Information: full citation , abstract , index terms 

Don't wait until you have to exorcise a daemon seeking to possess your SSH server. 

2 Ad hoc network: A security design for a general purpose, self-organizing, multihop ad 

^ hoc wireless network 

Thomas S. Messerges, Johnas Cukier, Tom A. M. Kevenaar, Larry Puhl, Rene Struik, Ed 
Callaway 

October 2003 Proceedings of the 1st ACM workshop on Security of ad hoc and sensor 

networks 
Publisher: ACM Press 

Full text available: ^| pdf(353.25 KB) Additional Information: full citation , abstract , references , index terms 

We present a security design for a general purpose, self-organizing, multihop ad hoc 
wireless network, based on the IEEE 802.15.4 low-rate wireless personal area network 
standard. The design employs elliptic-curve cryptography and the AES block cipher to 
supply message integrity and encryption services, key-establishment protocols, and a 
large set of extended security services, while at the same time meeting the low 
implementation cost, low power, and high flexibility requirements of ad hoc wire ... 



Keywords: 802.15.4, ad hoc networks, security, wireless 



3 Educational environments: Resource management portal for laboratories using real 
|k devices on the Internet 

^ Stefan Zimmerli, Marc-Alain Steinemann, Torsten Braun 

July 2003 ACM SIGCOMM Computer Communication Review, volume 33 issue 3 
Publisher: ACM Press 

Full text available: pdf(343.16 KB) Additional Information: full citation , abstract , references , index terms 

Internet-based distance learning is slowly gaining new territories and substituting current 
teaching methodologies. However, distance learning not only consists of transferring 
documents to web pages, but also of developing new concepts, methods, and 
implementation architectures. This article presents concepts and implementation issues 
for an example remote hands-on networking laboratory. The described course gives 
access to real network hardware via the Internet. In particular, authentication, ... 
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Keywords: computer networks laboratory, distance learning, hands-on training, resource 
management 



4 Attestation and binding: Linking remote attestation to secure tunnel endpoints 




Kenneth Goldman,. Ronald Perez, Reiner Sailer 
^ November 2006 Proceedings of the first ACM workshop on Scalable trusted computing 
STC '06 
Publisher: ACM Press 

Full text available: pdf(430.15 KB) Additional Information: full citation , abstract , references , index terms 

Client-Server applications have become the backbone of the Internet and are processing 
increasingly sensitive information. We have come to rely on the correct behavior and 
trustworthiness of online banking, online shopping, and other remote access services. 
These services are implemented as cooperating processes on different platforms. To trust 
distributed services, one must trust each cooperating process and their 
interconnection. Common practice today is to establish secure tunnels to protect t ... 

Keywords: certificates, trusted platform module 



File-system development with stackable layers 
John S. Heidemann, Gerald J. Popek 

February 1994 ACM Transactions on Computer Systems (TOCS), volume 12 issue 1 
Publisher: ACM Press 

1- 11 * ^ . u. ds*! jf/o „ C ka^\ Additional Information: full citation , abstract , references , citings , index 

Full text available: "p i pdf(2.16 MB) ' 

L - r terms , review 

Filing services have experienced a number of innovations in recent years, but many of 
these promising ideas have failed to enter into broad use. One reason is that current filing 
environments present several barriers to new development. For example, file systems 
today typically stand alone instead of building on the work of others, and support of new 
filing services often requires changes that invalidate existing work. Stackable file-system 
design addresses these issues in severa ... 

Keywords: composability, file system design, operating system structure, reuse 



6 Information security: Information security labs in IDS/IPS for distance education 




|k Hilmi A. Lahoud, Xin Tang 

^ October 2006 Proceedings of the 7th conference on Information technology education 
SIGITE 06 

Publisher: ACM Press 

Full text available: ^ pdf(1.34 MB) Additional Information: full citation , abstract , references , index terms 

To extend computer and information security technology courses into distance education 
(DE) program, one must provide online solutions for remote students to do hands-on 
experiments. Considering there are few solutions available, particularly in intrusion 
detection (IDS) / intrusion prevention (IPS) technology education programs, we evaluated 
the basic design criteria and developed a remote lab environment. It has been shown that 
the designed remote lab is capable of accommodating both individua ... 

Keywords: distance learning, online labs, remote labs 



DRM T trusted computing and operating system architecture 
Jason F. Reid, William J. Caelli 

January 2005 Proceedings of the 2005 Australasian workshop on Grid computing and 

e-research - Volume 44 ACSW Frontiers '05 
Publisher: Australian Computer Society, Inc. 



http://portal.acm. org/resul^^ 11/20/06 



Results (page 1 ): secure remote configuration Page 3 of 6 

Full text available: Q pdff191.31 KB) Additional Information: full citation , abstract , references , index terms 



Robust technological enforcement of DRM licenses assumes that the prevention of direct 
access to the raw bit representation of decrypted digital content and the license 
enforcement mechanisms themselves is possible. This is difficult to achieve on an open 
computing platform such as a PC. Recent trusted computing initiatives namely, the 
Trusted Computing Group (TCG) specification, and Microsoft's Next Generation Secure 
Computing Base (NGSCB) aim in part to address this problem. The protection arc ... 

8 A Self-Organizing Flock of Condors 

Ali Raza Butt, Rongmei Zhang, Y. Charlie Hu 

November 2003 Proceedings of the 2003 ACM/IEEE conference on Supercomputing 
Publisher: IEEE Computer Society 

Full text available: ^ pdf(305.08 KB) Additional Information: full citation , abstract 

Condor provides high throughput computing by leveraging idle-cycles on off-the-shelf 
desktop machines. It also supports flocking, a mechanism for sharing resources among 
Condor pools. Since Condor pools distributed over a wide area can have dynamically 
changing availability and sharing preferences, the current flocking mechanism based on 
static configurations can limit the potential of sharing resources across Condor pools. This 
paper presents a technique for resource discovery in distributed Co ... 

9 General storage protection techniques: Securing distributed storage: challenges, 
techniques, and systems 

^ Vishal Kher, Yongdae Kim 

November 2005 Proceedings of the 2005 ACM workshop on Storage security and 

survivability StorageSS '05 
Publisher: ACM Press 

Full text available: pdf(294.61 KB) Additional Information: full citation , abstract , references , index terms 

The rapid increase of sensitive data and the growing number of government regulations 
that require longterm data retention and protection have forced enterprises to pay serious 
attention to storage security. In this paper, we discuss important security issues related 
to storage and present a comprehensive survey of the security services provided by the 
existing storage systems. We cover a broad range of the storage security literature, 
present a critical review of the existing solutions, compare ... 

Keywords: authorization, confidentiality, integrity, intrusion detection, privacy 





10 Design of a distributed comptuer security lab 
T. Andrew Yang, Kwok-Bun Yue, Morris Liaw, George Collins, Jayaraman T. Venkatraman, 
Swati Achar, Karthik Sadasivam, Ping Chen 

October 2004 Journal of Computing Sciences in Colleges, volume 20 issue 1 
Publisher: Consortium for Computing Sciences in Colleges 

Full text available: "f H pdf(459.84 KB) Additional Information: full citation , abstract , references 

Across the US and the rest of the world, there exists a lack of computer security 
components in many CS/IT curricula. For those programs that do have such components 
in computer security, a common difficulty is to integrate "real-world" labs into the 
courses, in order to provide hands-on experiences to the learners. Due to concerns for 
security breaches and network hacking, system administrators are reluctant to allow 
computer security labs involving network sniffing, virus scripting, etc. to be ... 

11 Software Engineering for Secure Systems (SESS) — Building Trustworthy 

|k Applications: Towards an architectural treatment of software security: a connector- 
centric approach 

Jie Ren, Richard Taylor, Paul Dourish, David Redmiles 

May 2005 ACM SIGSOFT Software Engineering Notes , Proceedings of the 2005 
workshop on Software engineering for secure systems— building 
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trustworthy applications SESS '05, Volume 30 Issue 4 
Publisher: ACM Press 

Full text available: pdf(334. 15 KB) Additional Information: full citation , abstract , references , index terms 

Security is a very important concern for software architecture and software components. 
Previous modeling approaches provide insufficient support for an in-depth treatment of 
security. This paper argues for a more comprehensive treatment based on software 
connectors. Connectors provide a suitable vehicle to model, capture, and enforce security. 
Our approach models security principal, privilege, trust, and context of architectural 
constituents. Extending our existing architecture description lang ... 

Keywords: secure software connector, security, software architecture 



12 Configuration management & security: Secure sharing between untrusted users in a 




^ transparent source/binary deployment model 
^ Eelco Dolstra 

November 2005 Proceedings of the 20th IEEE/ACM international Conference on 
Automated software engineering ASE '05 

Publisher: ACM Press 

Full text available: "|| pdf(276.98 KB) Additional Information: full citation , abstract , references , index terms 

The Nix software deployment system is based on the paradigm of transparent 
source/binary deployment: distributors deploy descriptors that build components from 
source, while client machines can transparently optimise such source builds by 
downloading pre-built binaries from remote repositories. This model combines the 
simplicity and flexibility of source deployment with the efficiency of binary deployment. A 
desirable property is sharing of components: if multiple users install fro ... 

Keywords: configuration management, hash rewriting, secure sharing, security, software 
deployment, source deployment 



13 Network security metrics: A weakest-adversary security metric for network 
configuration security analysis 

Joseph Pamula, Sushil Jajodia, Paul Ammann, Vipin Swarup 

October 2006 Proceedings of the 2nd ACM workshop on Quality of protection QoP '06 
Publisher: ACM Press 

Full text available: "||| pdf(646.37 KB) Additional Information: full citation , abstract , references , index terms 

A security metric measures or assesses the extent to which a system meets its security 
objectives. Since meaningful quantitative security metrics are largely unavailable, the 
security community primarily uses qualitative metrics for security. In this paper, we 
present a novel quantitative metric for the security of computer networks that is based on 
an analysis of attack graphs. The metric measures the security strength of a network in 
terms of the strength of the weakest adversary who can succe .... 

Keywords: attack graphs, exploit, network security, quantitative measure, security 
metric, vulnerability 



14 Applications 2: Implementation and performance evaluation of CONFLEX-G: grid- 
M> enabled molecular conformational space search program with OmniRPC 
^ Yoshihiro Nakajima, Mitsuhisa Sato, Hitoshi Goto, Taisuke Boku, Daisuke Takahashi 

June 2004 Proceedings of the 18th annual international conference on 
Supercomputing 

Publisher: ACM Press 

Full text available:^ ) pdf(256. 17 KB) Additional Information: full citation , abstract , references , index terms 

CONFLEX-G is the grid-enabled version of a molecular conformational space search 
program called COIMFLEX. We have implemented CONFLEX-G using a grid RPC system 
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called OmniRPC. In this paper, we report the performance of CONFLEX-G in a grid testbed 
of several geographically distributed PC clusters. In order to explore many conformation 
of large bio-molecules, CONFLEX-G generates trial structures of the molecules and 
allocates jobs to optimize a trial structure with a reliable molecular mechanics m ... 

Keywords: CONFLEX-G, OmniRPC, computational chemistry, conformational space 
search, grid RPC system, grid computing 



15 Paranoid Penguin: The 101 Uses of OpenSSH: Part I 
Mick Bauer 

January 2001 Linux Journal 

Publisher: Specialized Systems Consultants, Inc. 

Full text available: W\ html(20.92 KB) Additional Information: full citation , references , index terms 



16 Beowulf and Linux: an integrated project course 
Robert Montante 

May 2002 Journal of Computing Sciences in Colleges, volume 17 issue 6 
Publisher: Consortium for Computing Sciences in Colleges 

Full text available: ^ pdf(192.08 KB) Additional Information: full citation , abstract , references , index terms 

This paper describes an experimental, integrated project course. The theme of the course 
is the Beowulf computing cluster, a parallel computing system emphasizing inexpensive 
hardware and software. Beowulf clusters are thoroughly described in references [1] 
through [5], and elsewhere. The integrated project involves assembling the cluster 
hardware, installing and configuring the operating system, networking, and application 
software, and conducting parallel-programming activities on the complete ... 




17 Paranoid penguin: Linux VPN technologies 
Mick Bauer 

February 2005 Linux Journal, volume 2005 issue 130 
Publisher: Specialized Systems Consultants, Inc. 

Full text available: iff) html(20.94 KB) Additional Information: full citation , abstract , index terms 
c 



18 Remote access internetworking laboratory 
Sung Yoo, Scott Hovis 

March 2004 ACM SIGCSE Bulletin , Proceedings of the 35th SIGCSE technical 

symposium on Computer science education SIGCSE '04, volume 36 issue 1 
Publisher: ACM Press 

Full text available- ^pdff205.25 KB) Additional Information: full citation , abstract, references , citings, index 
fc^— terms 

College students in computer networking courses are very interested in Internet 
technology because of the rapid growth in that area. Of particular interest is the need for 
practical experience in network design and configuration. A typical computer networking 
class curriculum includes the study of theory and the laboratory projects. The laboratory 
projects are designed to give students a better understanding of computer networks. Most 
of the laboratory projects are software projects. Furthermore ... 

Keywords: computer networking, internetworking lab, remote access lab 



19 File and storage systems: Decentralized user authentication in a global file system 
Michael Kaminsky, George Savvides, David Mazieres, M. Frans Kaashoek 
October 2003 Proceedings of the nineteenth ACM symposium on Operating systems 
principles 
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Publisher: ACM Press 

Full text available: ^ pdf(144.43 KB) Additional Information: full citation , abstract , references , index terms 

The challenge for user authentication in a global file system is allowing people to grant 
access to specific users and groups in remote administrative domains, without assuming 
any kind of pre-existing administrative relationship. The traditional approach to user 
authentication across administrative domains is for users to prove their identities through 
a chain of certificates. Certificates allow for general forms of delegation, but they often 
require more infrastructure than is necessary to sup ... 

Keywords: ACL, SFS, authentication, authorization, credentials, file system, groups, 
users 



20 Paranoid penguin: an introduction to FreeS/WAN, Part II H 
Mick Bauer 

February 2003 Linux Journal, volume 2003 issue 106 
Publisher: Specialized Systems Consultants, Inc. 

Full text available: fjg] html(17.08 KB) Additional Information: full citation , index terms 
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Security: SECA: security-enhanced communication architecture 

Joel Coburn, Srivaths Ravi, Anand Raghunathan, Srimat Chakradhar 

September 2005 Proceedings of the 2005 international conference on Compilers, 

architectures and synthesis for embedded systems CASES 05 
Publisher: ACM Press 

Full text available: l f|| pdf(396.53 KB) Additional Information: full citation , abstract , references , index terms 

In this work, we propose and investigate the idea of enhancing a System-on-Chip (SoC) 
communication architecture (the fabric that integrates system components and carries the 
communication traffic between them) to facilitate higher security. We observe that a wide 
range of common security attacks are manifested as abnormalities in the system-level 
communication traffic. Therefore, the communication architecture, with its global system- 
level visibility, can be used to detect them. The communicati ... 

Keywords: AMBA Bus, access control, architecture, attacks, bus, communication, digital 
rights management (DRM), intrusion detection, security, security-aware design, small 
embedded systems, system-on-chip (SoC) 



2 M1-E: ad-hoc - routing protocols: TARP: trust-aware routing protocol |jf 
^ L. Abusalah, A. Khokhar, G. BenBrahim, W. EIHajj 

^ July 2006 Proceeding of the 2006 international conference on Communications and 
mobile computing IWCMC '06 

Publisher: ACM Press 

Full text available: pdf(357.77 KB) Additional Information: full citation , abstract , references , index terms 

Security is a critical issue in a mobile ad hoc network (MANET). In most of the previous 
protocols security is an added layer above the routing protocol. We propose a Trust- Aware 
Routing Protocol (TARP) for secure-trusted routing in mobile ad hoc networks. In TARP, 
security is inherently built into the routing protocol where each node evaluates the trust 
level of its neighbors based on a set of attributes and determines the route based on 
these attributes. This paper evaluates the proposed TARP ... 

Keywords: ad hoc, aware routing, encryption, power, trust 

3 DRM experience: Digital rights management in a 3G mobile phone and bevond §|§ 
Thomas S. Messerges, Ezzat A. Dabbish 

^ October 2003 Proceedings of the 3rd ACM workshop on Digital rights management 
DRM '03 
Publisher: ACM Press 

Full text available: ^ pdf(306.59 KB) Additional Information: full citation , abstract , references , citings , index 
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terms 

In this paper we examine how copyright protection of digital items can be securely 
managed in a 3G mobile phone and other devices. First, the basic concepts, strategies, 
and requirements for digital rights management are reviewed. Next, a framework for 
protecting digital content in the embedded environment of a mobile phone is proposed 
and the elements in this system are defined. The means to enforce security in this system 
are described and a novel "Family Domain" approach to content management ... 

Keywords: MPEG-21, copyright protection, cryptography, digital content, digital rights 
management, embedded system, key management, mobile phone, open mobile alliance, 
security 



4 Can GRID services provide answers to the challenges of national health information 
sharing? 

I. Bilykh, Y. Bychkov, D. Dahlem, J. H. Jahnke, G. McCallum, C. Obry, A. Onabajo, C. 
Kuziemsky 

October 2003 Proceedings of the 2003 conference of the Centre for Advanced Studies 
on Collaborative research 

Publisher: IBM Press 

Full text available: ^ pelf (964. 34 KB) Additional Information: full citation , abstract , references , index terms 

It has been widely recognized that one of the keys to cost reduction and service 
improvement in national health care lies in the integration of medical information system. 
Integration of information can not only improve care delivery today, but it can also help 
build research bases to enhance future care delivery. The question is how to achieve such 
integration? Imposing a single client software solution or common clinical terminology 
does not appear likely to happen. That lack of single softwar ... 

5 Component-based interchangeable cryptographic architecture for securing wireless 

connectivity in Java<sup>TM</sup> applications 
Johnny Li-Chang Lo, Judith Bishop 

September 2003 Proceedings of the 2003 annual research conference of the South 

African institute of computer scientists and information technologists 
on Enablement through technology SAICSIT '03 

Publisher: South African Institute for Computer Scientists and Information Technologists 

Full text available: ^ pdff147,85 KB) Additional Information: full citation , abstract , references , index terms 

The development of Java based wireless applications presents challenges such as securing 
communication and authentication between mobile devices and a server. It is 
acknowledged that cryptography is commonly used to secure network communications 
and provide authentication functionality. However, due to the nature of mobile devices 
such as cellular phones and personal digital assistants, the application of cryptography on 
a software level in Java wireless applications can slow down the execution ... 

Keywords: component, cryptography, general packet radio services, global system for 
mobile applications, mobile devices, protocols, separation of concerns, wireless application 
protocol, wireless transport layer security 



How to prove where you are: tracking the location of customer equipment 
Eran Gabber, Avishai Wool 

November 1998 Proceedings of the 5th ACM conference on Computer and 

communications security 
Publisher: ACM Press 

Full text available: *P )pdf(1.01 MB) Additional Information: full citation , references , citings , index terms 
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Anup K. Ghosh, Tara M. Swaminatha 

February 2001 Communications of the ACM, volume 44 issue 2 
Publisher: ACM Press 

Full text available: ^pdfOO.SB KB) 

Q , ' Additional Information: full citation , references , citings , index terms 
ijg html(38.81 KB) ' — — 



8 Online course computer science student presentations online 
Cliff Layton 

April 2005 Journal of Computing Sciences in Colleges, volume 20 issue 4 
Publisher: Consortium for Computing Sciences in Colleges 

Full text available: ^ pdf(126,91 KB) Additional Information: full citation , abstract , references , index terms 

Computer Science and other courses involving live (or prerecorded) student presentations 
have been difficult to offer online, especially when presenting and non-presenting 
students are located considerably geographically distant from a physical campus of the 
offering institution or can not meet at specified times. This paper will consider tools and 
techniques supporting online course Computer Science (or other) student presentations 
and attendance, significantly including situations in which stu ... 

9 Means and Methods for Collecting and Analyzing QoE Measurements in Wireless 
Networks 

David Soldani 

June 2006 Proceedings of the 2006 International Symposium on on World of 
Wireless, Mobile and Multimedia Networks WOWMOM '06 

Publisher: IEEE Computer Society 

Full text available: ^ pdf(438.87 KB) Additional Information: full citation , abstract , index terms 

Two practical approaches are possible for QoE monitoring: Service performance 
measurements using statistical samples; and network management system (NMS) using 
QoS parameters. This paper introduces both methodologies. Fundamental QoE 
performance metrics are presented and the statistical confidence on measured data is 
discussed. The proposed method for collecting service level metrics makes use of a mobile 
QoS agent (MQA) installed in handsets. An MQA is described and validated in a real 3GSM 
net ... 

10 Mobile computing and applications (MCA): A declarative framework for adaptable 
^ applications in heterogeneous environments 

^ P. Inverardi, F. Mancinelli, M. Nesi 

March 2004 Proceedings of the 2004 ACM symposium on Applied computing 
Publisher: ACM Press 

Full text available: "jl] pdf(242.30 KB) Additional Information: full citation , abstract , references 

In this paper we present an approach for developing adaptable software applications. The 
problem we are facing is that of a (possibly mobile) user who wants to download and 
execute an application from a remote server. The user's hosting device can be of different 
kinds (laptops, personal digital assistants, cellular phones, communicators, etc.) with 
specific hardware and software capabilities. The problem is to be able to decide whether 
the user's current device characteristics are compatible wi ... 

11 Defending wireless infrastructure against the challenge of DDoS attacks 
Xianjun Geng, Yun Huang, Andrew B. Whinston 

June 2002 Mobile Networks and Applications, volume 7 issue 3 

Publisher: Kluwer Academic Publishers 

Full text available- f ^pdf(313 57 KB) Additional Information: full citation , abstract , references , citings , index 

! terms 

This paper addresses possible Distributed Denial-of-Service (DDoS) attacks toward the 
wireless Internet including the Wireless Extended Internet, the Wireless Portal Network, 



http://portal.acm.org/resd 11/20/06 



Results (page 1 ): secure phone configuration Page 4 of 6 



and the Wireless Ad Hoc network. We propose a conceptual model for defending against 
DDoS attacks on the wireless Internet, which incorporates both cooperative technological 
solutions and economic incentive mechanisms built on usage-based fees. Cost- 
effectiveness is also addressed through an illustrative implementation sche ... 

Keywords: DDoS attack, PBN, wireless ad hoc network, wireless extended internet, 
wireless infrastructure, wireless portal network 



12 A secure low-power approach for providing mobile encryption 
Michael E. Gruen 

June 2006 Journal of Computing Sciences in Colleges, volume 21 issue 6 
Publisher: Consortium for Computing Sciences in Colleges 

Full text available: ^ pdf( 148.02 KB) Additional Information: full citation , abstract , index terms 

Despite advancing technology, most mobile embedded devices (i.e. PDAs and cellphones) 
have weak wireless communication security. While some of the more powerful mobiles 
can perform public-key encryption, many devices are left with paltry, if any, encryption 
capabilities. In the marketplace, battery life and size concerns trump security. However, 
as our world increasingly relies on these devices for sensitive data (banking, business and 
financial correspondence, payments, etc.) and on the instant ... 

13 Interactive systems in public places: Contextualizing mobile IT 
Jorn Messeter, Eva Brandt, Joachim Halse, Martin Johansson 

August 2004 Proceedings of the 2004 conference on Designing interactive systems: 

processes, practices, methods, and techniques 
Publisher: ACM Press 

CIU , -i ui m jf/^n no vn\ Additional Information: full citation , abstract , references , citings , index 

Full text available: Wi pdf(223.92 KB) ' ' ' a -' 

LJ ~^ terms 

Information and communication technologies are moving into the era of ubiquitous 
computing, with increased density of technology and increased mobility and continuity in 
use. From a design perspective, addressing the accommodation and coordination of 
multiple devices and services in situated use across different contexts is becoming 
increasingly important. In the COMIT project, ethnographic fieldwork has been combined 
with participatory design engaging users, designers and researchers in order t ... 

Keywords: contextual factors, ethnography, mobile technology, participatory design, use 
qualities 



14 Securing Name Servers on UNIX 
Nalneesh Gaur 

December 1999 Linux Journal 

Publisher: Specialized Systems Consultants, Inc. 

Full text available: W\ html(14.66 KB) Additional Information: full citation , abstract , references , index terms 

Because the DNS plays such a vital role in the Internet, it is important that this service be 
protected and secured 

15 Stealth e-mail to the rescue 
Peter Ziobrzynski 

March 2006 Linux Journal, volume 2006 issue 143 
Publisher: Specialized Systems Consultants, Inc. 

Full text available: jjg html(20.19 KB) Additional Information: full citation , abstract , index terms 
A sneaky way to get to your personal e-mail server from work. 

16 Abstract Personal Communications Manager (APCM) 
Konrad Froitzheim 
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t April 1992 Proceedings of the 1992 ACM annual conference on Communications 
Publisher: ACM Press 

Full text available: ^ pdf(577.28 KB) Additional Information: full citation , abstract , references , index terms 

The Abstract Personal Communications Manager (APCM) is an Application programmers 
Interface (API) for telecommunications, providing simple and powerful interaction 
between communication applications and protocol software for circuit switched 
connections and transmission of voice and data, A few generic service primitives are 
developed through abstraction of the various call control operations. 



17 Tutorials: Rules of thumb for secure software engineering 
Holger Peine 

May 2005 Proceedings of the 27th international conference on Software engineering 
ICSE '05 , Proceedings of the 27th international conference on Software 
engineering ICSE '05 
Publisher: ACM Press, IEEE Computer Society 

Full text available: fE| pdf( 146.41 KB) 

~~ Additional Information: full citation , abstract , references , index terms 
Publisher Site 

No abstract available 

Keywords: secure software, software engineering, software security 



18 OOPSLA practitioner reports chair's welcome: Secure trade lane: a sensor network Q 
|& solution for more predictable and more secure container shipments 
^ Steffen Schaefer 

October 2006 Companion to the 21st ACM SIGPLAN conference on Object-oriented 
programming languages, systems, and applications OOPSLA '06 

Publisher: ACM Press 

Full text available: ^ pdf(520.95 KB) Additional Information: full citation , abstract , references , index terms 

Due to globalization and especially with China becoming the world's production center, 
global trade is strongly increasing. The vast majority of all goods are shipped in ocean- 
going containers. Secure Trade Lane (STL) is a solution for making container shipments 
more predictable and more secure. The solution comprises an embedded controller that is 
mounted on ocean-going containers, and a sophisticated backend communicating with the 
embedded controller and integrating all trading partners. Both ... 

Keywords: EPCglobal, GPRS, GPS, TREC, WCO, WSC, ZigBee, container tracking, 
embedded controller, mote, satellite communication, secure trade lane, sensor network 



19 Applications, services, and architecture: Smart edge server: beyond a wireless 




access point 

G. Manjunath, T. Simunic, V. Krishnan, J. Tourrilhes, D. Das, V. Srinivasmurthy, A. 
McReynolds 

October 2004 Proceedings of the 2nd ACM international workshop on Wireless mobile 
applications and services on WLAN hotspots 

Publisher: ACM Press 

Full text available: ^ pdf(410.68 KB) Additional Information: full citation , abstract , references , index terms 

Wireless access at cafes, airports, homes and businesses have proliferated all over the 
globe with several different Wireless Internet Service Providers. Similarly, digital media 
has created a paradigm shift in media processing resulting in a complete change in media 
usage models, revamped existing businesses and has introduced new industry players. 
We believe there is a tremendous opportunity for application and system services at the 
intersection of the above two domains for exploiting the ... 

Keywords: access point, low-power, management, media, security, wireless 
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20 DIM security and authentication: Authentication using multiple communication 




|k channels 

^ Shintaro Mizuno, Kohji Yamada, Kenji Takahashi 

November 2005 Proceedings of the 2005 workshop on Digital identity management 

DIM '05 
Publisher: ACM Press 

Full text available: ^ pdf(3.02 MB) Additional Information: full citation , abstract , references , index terms 

We discuss an authentication method using multiple communication channels. This 
method enables on-line service providers to strongly authenticate their users on a non- 
trusted communication channel (e.g. using a kiosk PC in an Internet cafe to access the 
Internet) via trusted communication channels (e.g. a mobile phone network). For the 
illustration purpose, we use a commonly available configuration in the current 
marketplace, in which users access service providers through PCs over the Inte ... 

Keywords: authentication, internet, mobile phone, multiple channels 
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1 Quiet calls: talking silently on mobile phones 
Les Nelson, Sara Bly, Tomas Sokoler 

March 2001 Proceedings of the SIGCHI conference on Human factors in computing 

systems 
Publisher: ACM Press 

Full text available: f £ | pdf(492.32 KB) Additional Information: full citation, abstract , references , citings, index 

: terms , review 

Quiet Calls is a technology allowing mobile telephone users to respond to telephone 
conversations without talking aloud. QC-Hold, a Quiet Calls prototype, combines three 
buttons for responding to calls with a PDA/mobile phone unit to silently send pre-recorded 
audio directly into the phone. This permits a mixed-mode communication where callers in 
public settings use a quiet means of communication, and other callers experience a voice 
telephone call. An evaluation of QC-Hold shows that it is ... 

Keywords: computer mediated communication, hand-held devices, interaction design, 
mobile computing, telecommunication 



2 Mobility and sociability: Meeting in quiet: choosing suitable notification modalities for §|§ 
mobile phones 
Daniel Fallman, Bjorn Yttergren 

November 2005 Proceedings of the 2005 conference on Designing for User experience 
DUX '05 

Publisher: AIGA: American Institute of Graphic Arts 

Full text available: ^ pdf(117.14 KB) Additional Information: full citation , abstract , references 

This project starts out from one of those awkward moments when one's mobile phone 
sets off with a loud noise in situations one would definitely not want it to; e.g. at the 
opera or in an important meeting. The design challenge is how a mobile phone, as a 
computer device that appears in several different human contexts, could come to adapt 
its behavior to the situation. Is there a way for a mobile phone to know, or at least have a 
clue, which notification modality would be the most appropriate?Ou ... 

Keywords: context aware, design, magnetic link, mobile phones, mobility, near-field 
communication, notification modality 



3 Architectures: 3D graphics LSI core for mobile phone "Z3D" 

Masatoshi Kameyama, Yoshiyuki Kato, Hitoshi Fujimoto, Hiroyasu Negishi, Yukio Kodama, 
Yoshitsugu Inoue, Hiroyuki Kawai 

July 2003 Proceedings of the ACM SIGGRAPH/ EUROGRAPHICS conference on 
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Graphics hardware 

Publisher: Eurographics Association 

Full text available: pdf(649.83 KB) Additional Information; full citation , abstract , references 

In this paper we describe the architecture of the 3D graphics LSI core for mobile phone 
"Z3D". The major 3D graphics applications on mobile phones are character animation and 
games. While a character animation or a game is running, the CPU has to be used for the 
communication to the center machine and CPU clock frequency is low. Therefore, the 
requirement of Z3D is small, low power, and CPU free. The pipeline of Z3D is composed of 
a geometry engine, rendering engine, and pixel engine. Generally, ... 

Keywords: graphics accelerator, graphics hardware, rendering hardware 



4 Graphics 2: User experiences with mobile phone camera game interfaces 
^ Sam Bucolo, Mark Billinghurst, David Sickinger 

December 2005 Proceedings of the 4th international conference on Mobile and 

ubiquitous multimedia MUM '05 
Publisher: ACM Press 

Full text available: ^ pdf(337.68 KB) Additional Information: full citation , abstract , references , index terms 

This paper presents the findings of a comparative study investigating different input 
interfaces for a mobile phone games application. A standard mobile phone joystick 
interface is compared with a phone camera interface to detect the phone translation and 
tilt to control a ball's movement within various levels of difficulty of a virtual maze game. 
Game completion times together with the resultant user experience for each of the games 
was collected during the studies. Results indicate that the jo ... 

Keywords: human interaction, mobile camera phones, mobile games, novel interfaces, 
tangible interfaces 



Configuring the Mobile User: Sociological and Industry Views 
N. Green, R. H. R. Harper, G. Murtagh, G. Cooper 
January 2001 Personal and Ubiquitous Computing, volume 5 issue 2 
Publisher: Springer-Verlag 

Full text available: pdff 123.49 KB) Additional Information: full citation , abstract , index terms 

This article considers the role of the consumer in the diffusion of mobile 
telecommunications technologies. There is presently little research on the consumption 
and use of mobile technologies, and the aim of the present paper is to facilitate discussion 
about the way consumer behaviour is currently understood in industry and academia. The 
paper considers key themes in social science research on mobile ICTs, and 
understandings of the consumer held by those in the mobile industry. Bringing these ... 

Minimizing queuing delays and number of messages in mobile phone location 
David Goodman, P. Krishnan, Binay Sugla 

August 1996 Mobile Networks and Applications, volume 1 issue 1 
Publisher: Kluwer Academic Publishers 

Full text available: f! 3 odff389.39 KB) Additional Information: full citation , abstract, references , citings, index 
lLJ ~^ terms 

The mobility of phones in a cellular or Personal Communication Services (PCS) 
environment introduces the prob- lem of efficiently locating the called phone. In this 
paper, we present an analysis of the delay and number of messages transmitted in 
different sequential and parallel search strategies, considering for the first time the issue 
of queuing on radio paging channels. Our analysis shows that parallel search may not 
reduce the time to find a mobile phone if the parameters of the system ... 



7 



Generating mobile device user interfaces for diagram-based modelling tools 
Dejin Zhao, John Grundy, John Hosking 
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January 2006 Proceedings of the 7th Australasian User interface conference - Volume 
50 AUIC '06 

Publisher: Australian Computer Society, Inc. 

Full text available: pdf(1.55 MB) Additional Information: full citation , abstract , references , index terms 

Mobile display devices such as phones and PDAs have become very widely available and 
used. However, most content on these devices is limited to text, static images and motion 
video. Displaying and interacting with dynamic diagrammatic content on such devices is 
difficult, as is engineering applications to implement such functionality. We describe a set 
of plug-in components for a meta-diagramming tool that enable a diagram type to be 
visualized and interacted with on mobile devices. Key features ... 

Keywords: collaborative design, diagrams on mobile phones, mobile user interfaces 



8 Graphics 2: Mobile phone based AR scene assembly 
^ Anders Henrysson, MarkOllila, Mark Billinghurst 

^ December 2005 Proceedings of the 4th international conference on Mobile and 
ubiquitous multimedia MUM '05 

Publisher: ACM Press 

Full text available: B p?| pdf(193.31 KB) Additional Information: full citation , abstract , references 

In this paper we describe a mobile phone based Augmented Reality application for 3D 
scene assembly. Augmented Reality on mobile phones extends the interaction capabilities 
on such handheld devices. It adds a 6 DOF isomorphic interaction technique for 
manipulating 3D content. We give details of an application that we believe to be the first 
where 3D content can be manipulated using both the movement of a camera tracked 
mobile phone and a traditional button interface as input for transformations. ... 

Keywords: CAD, augmented reality, mobile phone 



9 Implementation and management of a mobile phone filtering system 
Jyhi-Kong Wey, Pen-Kuan Huang, Hui-Chi Chang, Jiu-Yang Liu 
May 2000 International Journal of Network Management, volume 10 issue 3 
Publisher: John Wiley & Sons, Inc. 

Full text available: ^ pdf(277.17 KB) Additional Information: full citation , abstract , references , index terms 

This paper presents the system design and network management of a mobile phone 
filtering system &lpar;MOFIS&rpar; for filtering clones of cellular international calls by an 
IN-based service node approach. Copyright © 2000 John Wiley & Sons, Ltd. 



10 RFID: tagging the world: Spontaneous marriages of mobile devices and interactive 
spaces 

Trevor Pering, Rafael Ballagas, Roy Want 

September 2005 Communications of the ACM, Volume 48 issue 9 
Publisher: ACM Press 

Full text available- TO pdf(410 76 KB) 

^3? 1/0 ~» An ' Additional Information: full citation , abstract , references , index terms 
ffi html(32.40 KB) 

Configuring themselves through Elope middleware, tagged physical objects and rooms let 
users seamlessly integrate their content and invoke services. 



11 iTree: does the mobile phone encourage learners to be more involved in collaborative H 
learning? 

Jun Nakahara, Shinichi Hisamatsu, Kazaru Yaegashi, Yuhei Yamauchi 

May 2005 Proceedings of th 2005 conference on Computer support for collaborative 
learning: learning 2005: the next 10 years! CSCL '05 

Publisher: International Society of the Learning Sciences 

Full text available: fj? | pdf(317.44 KB) Additional Information: full citation , abstract , references 



http://portal.acm. org/resultsxfm^ 



11/20/06 



Results (page 1 ): mobile phone configuring Page 4 of 6 

A web-based collaborative learning sites has the bulletin board system (BBS) and allow 
learners to interact, exchange information, engage in discussion, and collaborate on 
projects. This paper outlines the development and evaluation of iTree, a Java mobile 
phone application that encourages learners to participate in online BBS forums. In 
essence, the application reminds the students of their level of participation in a class BBS 
forum via an image on the wallpaper on their mobile phones. Posting ... 

Keywords: collaborative learning, discussion, e-learning, mobile phone 



12 Mobile computing and applications (MCA): Alternative source coding model for 




mobile text communication 
^ Takehiro Nakayama 

March 2005 Proceedings of the 2005 ACM symposium on Applied computing SAC '05 
Publisher: ACM Press 

Full text available: ^ pdf(139.87 KB) Additional Information: full citation , abstract , references , index terms 

This paper presents a new source coding model for the efficient transmission of mobile 
text messages. Unlike conventional text messages, which are sent in the form of 
character sequences, the proposed method uses key-code sequences that reflect the 
user's typing history for authoring the message. The key-code representation can be as 
efficient as 4 bits per key-code by utilizing existing dictionary-based text entry systems 
and mobile phones equipped with the standard reduced keyboard. Experiment ... 

Keywords: WYTIWYS, dictionary, entropy, mobile phone, source coding 



13 Mobile services and technology track: SmartRestaurant: mobile payments in context- §|§ 

|k aware environment 

^ Janne Lukkari, Jani Korhonen, Timo Ojala 

March 2004 Proceedings of the 6th international conference on Electronic commerce 
ICEC 04 

Publisher: ACM Press 

Full text available: pdf(408.85 KB) Additional Information: full citation , abstract , references , index terms 

Mobility, context-awareness and payment combined provide a customer with a completely 
new setting of consuming services at any time and any place. We introduce 
SmartRestaurant service, which allows customers to use mobile devices for ordering and 
paying lunches from a nearby campus restaurant beforehand. Further, SmartRestaurant 
provides the restaurant with means of adjusting the sales with production capacity and 
prior knowledge of upcoming orders. We present a user evaluation of the system in ... 

Keywords: B2C, context-aware, indirect mCommerce, mobile payment 



™ From methods to design: Voice-mail diary studies for naturalistic data capture under |j§ 

mobile conditions 
^ Leysia Palen, Marilyn Salzman 

November 2002 Proceedings of the 2002 ACM conference on Computer supported 
cooperative work 

Publisher: ACM Press 

Full text available: f £| pdf(224.85 KB) Additional Information: full citation , abstract , references , citings, index 
' ! terms 

Mobile technology requires new methods for studying its use under realistic conditions "in 
the field." Refiexively, mobile technology also creates new opportunities for data collection 
while participants are remotely located. We report on our experiences with a variation on 
the paper-based diary study technique, which we extend by using voice-mail paired with 
mobile and landline telephony to more easily collect data in natural situations. We discuss 
lessons learned from experiences with voice-ma ... 
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Keywords: CSCW, HQ, diary study, mobile computing, mobility, naturalistic study, 
phones, usability, voice-mail 

15 Interactive systems in public places: Contextualizing mobile IT |§§ 
<|k Jdrn Messeter, Eva Brandt, Joachim Halse, Martin Johansson 

^ August 2004 Proceedings of the 2004 conference on Designing interactive systems: 
processes, practices, methods, and techniques 
Publisher: ACM Press 

Full text available- B P| pdf(223 92 KB) Additiona ' Information: full citation , abstract , references , citings , index 
k^—* " terms 

Information and communication technologies are moving into the era of ubiquitous 
computing, with increased density of technology and increased mobility and continuity in 
use. From a design perspective, addressing the accommodation and coordination of 
multiple devices and services in situated use across different contexts is becoming 
increasingly important. In the COMIT project, ethnographic fieldwork has been combined 
with participatory design engaging users, designers and researchers in order t ... 

Keywords: contextual factors, ethnography, mobile technology, participatory design, use 
qualities 

16 (Special session) embedded tutorial + reguler session: embedded system §|§ 

applications: Toward mobile phone Linux 
Yukikazu Nakamoto 

January 2004 Proceedings of the 2004 conference on Asia South Pacific design 
automation: electronic design and solution fair ASP-DAC '04 , 
Proceedings of the 2004 conference on Asia South Pacific design 
automation: electronic design and solution fair ASP-DAC '04 

Publisher: IEEE Press , IEEE Press 

Full text available: P| pdf(201.73 KB) 

J=jT Additional Information: full citation , abstract , references 

W Publisher Site 

Recently mobile phones provide not only voice service but internet access, multi-media 
message services, games, local communication controllers and so on. Therefore, more 
productive software platforms are required. We have developed the next generation 
software platform based on Linux for mobile phones. In this paper, we describe 
requirements for mobile phone Linux and solution candidate technologies to satisfy the 
requirements based on the development experience. 

17 Mobile applications: Metadata creation system for mobile images 
Risto Sarvas, Erick Herrarte, Anita Wilhelm, Marc Davis 

June 2004 Proceedings of the 2nd international conference on Mobile systems, 

applications, and services MobiSys '04 
Publisher: ACM Press 

Full text available- ffi pdf(564.05 KB) Additional Information: full citation , abstract, references , citings, index 
te*^ terms 

The amount of personal digital media is increasing, and managing it has become a 
pressing problem. Effective management of media content is not possible without 
content- related metadata. In this paper we describe a content metadata creation process 
for images taken with a mobile phone. The design goals were to automate the creation of 
image content metadata by leveraging automatically available contextual metadata on the 
mobile phone, to use similarity processing algorithms for reusing shared me ... 

Keywords: automated content metadata, content-based image retrieval, digital image 
management, mobile camera phones, wireless multimedia applications 
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^ pocket PCs with J2ME and .NET CF 
^ Andreas Janecek, Helmut Hlavacs 

October 2005 Proceedings of 4th ACM SIGCOMM workshop on Network and system 
support for games NetGames '05 

Publisher: ACM Press 

Full text available: pdf(144.06 KB) Additional Information: full citation , abstract , references , index terms 

In this paper we compare the Java 2 Micro Edition and the .NET Compact Framework with 
respect to their performance for programming multiplayer games for PDAs. We 
benchmark results for both platforms dealing with computational capabilities and 
communication performance over WLAN. We also have developed a simple prototypical 
multiplayer game called 3D-Pong and evaluate how simple resilience mechanisms can . 
hide WLAN packet losses for this game. 

Keywords: .NET compact framework, Java micro edition, PocketPC, WLAN, interactive 
real-time games 




19 Mobile computing and applications (MCA): MIRES: an information exchange system 

for mobile phones 
Qing Li, Xiang Li, Jian Zhai, Liu Wenyin 

March 2004 Proceedings of the 2004 ACM symposium on Applied computing 
Publisher: ACM Press 

Full text available: pdf(222.23 KB) Additional Information: full citation , abstract , references , index terms 

Mobile computing has been studied in the past few years on many respects: adaptive 
application, mobility model, data access and so on. However, most research aim at a 
general computing framework but not focus on a specific device, for example, mobile 
phone. Mobile phones are special due to some constraints compared with other devices 
and they currently serve as no more than passive terminals to a large extent. At the same 
time, mobile phones are probably the most popular device today. This paper ... 

Keywords: distributed data management, mobile resource sharing 



20 Papers: Mobile text entry using three keys 
^ Scott MacKenzie 

October 2002 Proceedings of the second Nordic conference on Human-computer 
interaction NordiCHI 02 

Publisher: ACM Press 

Additional Information: full citation , abstract , references , citings , index 



Full text available: TO pdf(198.85 KB) 

^ terms 

Six techniques for three-key text entry are described. The techniques use Left- and Right- 
arrow keys to maneuver a cursor over a linear sequence of characters, and a Select key 
to select characters. The keystrokes per character (KSPC) for the methods varies from 
10.66 to 4.23. Two techniques were chosen for formal evaluation. Method #2 positions 
characters in alphabetical order, while Method #6 uses linguistic enhancement to reorder 
characters following each entry to minimize the cursor d ... 

Keywords: linguistically enhanced text entry, mobile text entry, text entry performance 
evaluations, typamatic keying 
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